PRIVACY POLICY
Last Updated: March 8, 2026
This Privacy Policy describes how JBNN Experts Pvt Ltd (trading as "JB Experts"), a company incorporated under the Companies Act, 2013 (CIN: U52290KA2025PTC209436), with its registered office at WeWork Salarpuria Symbiosis, Bengaluru, Karnataka 560076, India ("Company," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you visit our website https://www.jbexperts.com, our e-commerce store at https://shop.jbexperts.com, or use any of our services (collectively, the "Services").
By accessing or using our Services, you consent to the collection, use, and processing of your personal information as described in this Privacy Policy. If you do not agree with this policy, please do not use our Services.
This Privacy Policy is compliant with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, India’s Digital Personal Data Protection Act, 2023 (“DPDP Act”), and the General Data Protection Regulation (EU) 2016/679 (“GDPR”) where applicable.
1. INFORMATION WE COLLECT
1.1 Personal Information You Provide Directly
We collect personal information that you voluntarily provide to us when you:
• Register on our website or create an account
• Fill out a contact form, inquiry form, or consultation booking form
• Subscribe to our newsletter or blog updates
• Purchase products or services through our e-commerce store
• Attend our webinars, bootcamps, or training programs
• Communicate with us via email, phone, WhatsApp, or social media
• Submit a supplier quotation or buyer inquiry
The types of personal information we may collect include:
• Full name, business name, and designation
• Email address and phone number (including WhatsApp number)
• Billing address, shipping address, and postal code
• Company registration details (GST number, IEC code, etc.)
• Product and manufacturing information shared for export analysis
• Payment information (processed securely through third-party gateways)
• Any other information you voluntarily provide in forms or communications
1.2 Information Collected Automatically
When you visit our website, we automatically collect certain technical information, including:
• IP address and approximate geographic location
• Browser type and version, operating system, and device information
• Pages visited, time spent on pages, click patterns, and navigation paths
• Referring website URL and search terms used to find our site
• Cookies, pixel tags, and similar tracking technologies (see Section 7)
1.3 Information from Third Parties
We may receive information about you from third-party sources, including:
• Payment processors (Razorpay, Stripe, PayPal) — transaction confirmation and payment status
• Social media platforms (LinkedIn, Facebook, Instagram) — when you interact with our pages or ads
• Business intelligence databases and trade directories — for buyer/supplier verification
• Webinar and event platforms (Zoho Webinar, YouTube) — attendance and engagement data
2. HOW WE USE YOUR INFORMATION
We use the personal information we collect for the following purposes:
2.1 Service Delivery
• To provide export management consulting and related services
• To conduct market research, buyer discovery, and export analysis
• To process orders, payments, and deliver digital products (reports, databases, courses)
• To manage client relationships and maintain service records
• To facilitate communication between manufacturers, buyers, and logistics partners
2.2 Communication
• To respond to your inquiries, requests, and support tickets
• To send appointment confirmations, service updates, and follow-ups
• To send marketing communications, newsletters, and promotional offers (with your consent)
• To send webinar invitations, bootcamp updates, and educational content
2.3 Business Operations
• To improve our website, services, and user experience through analytics
• To detect, prevent, and address fraud, security threats, and technical issues
• To comply with legal obligations, tax requirements, and regulatory mandates
• To enforce our Terms of Service and protect our legal rights
• To conduct internal research, training, and quality assurance
3. LEGAL BASIS FOR PROCESSING (GDPR & DPDP ACT)
We process your personal data based on the following legal grounds:
• Consent: Where you have given explicit consent for a specific purpose (e.g., newsletter subscription, marketing emails). You may withdraw consent at any time.
• Contractual Necessity: Where processing is necessary to perform a contract with you (e.g., delivering purchased services or products).
• Legitimate Interest: Where processing is necessary for our legitimate business interests (e.g., improving services, fraud prevention), provided it does not override your rights.
• Legal Obligation: Where processing is required to comply with applicable laws (e.g., tax regulations, FEMA compliance, RBI guidelines).
4. HOW WE SHARE YOUR INFORMATION
We do not sell, rent, or trade your personal information to third parties. We may share your information in the following limited circumstances:
4.1 Service Providers & Processors
We share data with trusted third-party service providers who assist in operating our business:
• Payment Processors: Razorpay (https://razorpay.com/privacy/), Stripe (https://stripe.com/privacy), PayPal (https://www.paypal.com/privacy) — for processing payments securely. We do not store your credit card or bank account details on our servers.
• Email & CRM Platforms: Zoho (CRM, Campaigns, Webinar), for managing client relationships and communications.
• Analytics: Google Analytics, for website traffic analysis and performance optimization.
• Hosting & Infrastructure: Zoho Sites (website hosting), Shopify (e-commerce store).
• Cloud Storage: For secure storage of business documents and client records.
4.2 Business Partners
In the course of providing export management services, we may share relevant business information (such as product specifications, pricing, and company profiles) with:
• Prospective international buyers and importers
• Logistics and shipping companies
• Customs brokers and freight forwarders
• Certification and compliance agencies
We will always seek your authorization before sharing your information with business partners for trade purposes.
4.3 Legal Requirements
We may disclose your information if required by law, court order, regulatory authority, or government request, including compliance with the Information Technology Act, 2000, FEMA, RBI guidelines, and applicable tax laws.
5. DATA RETENTION
We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:
• Client service records: Retained for the duration of the business relationship plus 8 years (as required under Indian tax and corporate law).
• Transaction records: Retained for 8 years from the date of transaction for tax and audit compliance.
• Marketing data (newsletter subscribers): Retained until you unsubscribe or request deletion.
• Website analytics data: Retained for up to 26 months (Google Analytics default).
• Inquiry and contact form data: Retained for 3 years from the date of last communication.
After the retention period expires, your data will be securely deleted or anonymized.
6. YOUR RIGHTS
6.1 Under India’s DPDP Act, 2023
As a Data Principal under the DPDP Act, you have the following rights:
• Right to Access: Request confirmation of whether we process your personal data and obtain a summary of such data.
• Right to Correction: Request correction of inaccurate or incomplete personal data.
• Right to Erasure: Request deletion of your personal data, subject to legal retention requirements.
• Right to Grievance Redressal: Lodge a complaint with our Grievance Officer or the Data Protection Board of India.
• Right to Withdraw Consent: Withdraw previously given consent at any time. Withdrawal will not affect the lawfulness of processing done prior to withdrawal.
• Right to Nominate: Nominate another individual to exercise your rights in case of your death or incapacity.
6.2 Under GDPR (for EU/EEA Residents)
If you are located in the European Union or European Economic Area, you additionally have the right to:
• Request data portability (receive your data in a structured, machine-readable format).
• Object to processing based on legitimate interests.
• Restrict processing of your personal data in certain circumstances.
• Lodge a complaint with your local data protection supervisory authority.
To exercise any of these rights, contact us at info@jbexperts.com or write to our Grievance Officer (see Section 11).
7. COOKIES AND TRACKING TECHNOLOGIES
Our website uses cookies and similar technologies to enhance your experience. Cookies are small text files stored on your device when you visit our website.
Types of cookies we use:
• Essential Cookies: Required for website functionality (login sessions, security, form submissions). These cannot be disabled.
• Analytics Cookies: Used to understand how visitors interact with our website (Google Analytics). These collect anonymized data about page views, traffic sources, and user behavior.
• Marketing Cookies: Used to deliver relevant advertisements and track campaign performance (Facebook Pixel, LinkedIn Insight Tag). These are only activated with your consent.
• Preference Cookies: Used to remember your settings and preferences (language, region).
You can manage cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, disabling essential cookies may affect website functionality.
For EU visitors: We display a cookie consent banner upon your first visit. Marketing and analytics cookies are only activated after you provide explicit consent.
8. DATA SECURITY
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
• SSL/TLS encryption for all data transmitted through our website.
• Secure payment processing through PCI-DSS compliant third-party gateways (Razorpay, Stripe, PayPal).
• Role-based access controls limiting employee access to personal data on a need-to-know basis.
• Regular security assessments and vulnerability monitoring.
• Encrypted cloud storage for client records and business documents.
While we take all reasonable precautions, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data.
9. INTERNATIONAL DATA TRANSFERS
As an export management company operating globally, your personal data may be transferred to and processed in countries outside India, including countries where our clients, buyers, logistics partners, and service providers are located.
Where your data is transferred internationally, we ensure appropriate safeguards are in place, including:
• Contractual protections with third-party processors requiring them to protect your data to standards equivalent to this Privacy Policy.
• Compliance with the DPDP Act’s provisions on cross-border data transfer, including monitoring government notifications on restricted countries.
• For EU data subjects: Transfers are conducted in compliance with GDPR Chapter V, using Standard Contractual Clauses or other approved mechanisms.
10. CHILDREN’S PRIVACY
Our Services are intended for business professionals and are not directed at individuals under the age of 18. We do not knowingly collect personal data from children under 18 years of age. If we become aware that we have collected personal data from a child without verifiable parental consent, we will take steps to delete that information promptly.
Under the DPDP Act, processing of children’s data (under 18) requires verifiable parental consent. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately at info@jbexperts.com.
11. GRIEVANCE OFFICER
In accordance with the Information Technology Act, 2000, the DPDP Act, 2023, and the rules made thereunder, the details of the Grievance Officer are as follows:
Name: Rohit Desai
Designation: Founder & Director
Company: JBNN Experts Pvt Ltd
Address: WeWork Salarpuria Symbiosis, Bengaluru, Karnataka 560076, India
Email: info@jbexperts.com
Phone: +91-9538888656
The Grievance Officer shall acknowledge your complaint within 48 hours and resolve it within 30 days from the date of receipt, in accordance with applicable laws.
If you are not satisfied with the resolution, you may file a complaint with the Data Protection Board of India (once constituted and operational under the DPDP Act).
12. CHANGES TO THIS PRIVACY POLICY
We reserve the right to update or modify this Privacy Policy at any time. When we make changes, we will update the "Last Updated" date at the top of this page and, where required by law, notify you via email or a prominent notice on our website.
We encourage you to review this Privacy Policy periodically. Your continued use of our Services after any changes constitutes your acceptance of the updated policy.
13. CONTACT US
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
JBNN Experts Pvt Ltd (trading as JB Experts)
Address: WeWork Salarpuria Symbiosis, Bengaluru, Karnataka 560076, India
Email: info@jbexperts.com
Phone: +91-9538888656
Website: https://www.jbexperts.com
